| GET auto-au.asiasoft.co.th/package/TaskKeyHookWD.dll | 90.84.161.17 | 200 OK | 105 kB |
URL User Request GET HTTP/1.1auto-au.asiasoft.co.th/package/TaskKeyHookWD.dll IP 90.84.161.17:80
File typePE32 executable (DLL) (GUI) Intel 80386, for MS Windows\012- data Size105 kB (105432 bytes) Hasheb3527638fe1cae3c594ce98b2176bcd c18fc92aedc2ff69abccc29145809c3699a00f66 1778265e0478933994207c2d18b564e79e59e569e782a8376a2d57f12288a5c5
NIDS | Severity | Alert | suricata | low | ET INFO Packed Executable Download | suricata | high | ET POLICY PE EXE or DLL Windows file download HTTP | suricata | low | ET INFO EXE IsDebuggerPresent (Used in Malware Anti-Debugging) |
GET /package/TaskKeyHookWD.dll HTTP/1.1
Host: auto-au.asiasoft.co.th
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 18:46:22 GMT
Content-Type: binary/octet-stream
Content-Length: 105432
Connection: keep-alive
Server: openresty
x-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc
CloudServiceDiscount: CDN
x-amz-request-id: 00000188945A5073440DF07DF6B8EC73
ETag: "eb3527638fe1cae3c594ce98b2176bcd"
Last-Modified: Fri, 12 May 2023 08:28:33 GMT
x-amz-tagging-count: 0
x-amz-id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCTPq3hZiTE29XLQYFk43HEWgt1PKrEdt
X-CCDN-Expires: 1035333
via: EU-GER-frankfurt-EDGE5-CACHE5[7],EU-GER-frankfurt-EDGE5-CACHE2[0,TCP_HIT,2],EU-GER-frankfurt-GLOBAL1-CACHE9[26],EU-GER-frankfurt-GLOBAL1-CACHE9[0,TCP_HIT,23]
x-hcs-proxy-type: 1
X-CCDN-CacheTTL: 2592000
X-CCDN-REQ-ID-46B1: 9f5c3a8ee8f303fbc96ca35f6c3ce195
nginx-hit: 1
Age: 15523531
Accept-Ranges: bytes
|